Attestation using both fixed token and portable token

Number of patents in Portfolio can not be more than 2000

United States of America Patent

PATENT NO 7318235
APP PUB NO 20040117625A1
SERIAL NO

10321751

Stats

ATTORNEY / AGENT: (SPONSORED)

Importance

Loading Importance Indicators... loading....

Abstract

See full text

Methods, apparatus and machine readable medium are described for creating and using protected key blobs that require a particular portable token be present before use of the key or keys of the protected key blob is granted. Such protected key blobs may be used to establish a level of trust between a local user and the computing device.

Loading the Abstract Image... loading....

First Claim

See full text

Family

Loading Family data... loading....

Patent Owner(s)

Patent OwnerAddressTotal Patents
INTEL CORPORATIONSANTA CLARA, CA28305

International Classification(s)

  • [Classification Symbol]
  • [Patents Count]

Inventor(s)

Inventor Name Address # of filed Patents Total Citations
Grawrock, David W Aloha, OR 66 1199

Cited Art Landscape

Patent Info (Count) # Cites Year
 
Other [Check patent profile for assignment information] (2)
6473508 Auto-recoverable auto-certifiable cryptosystems with unescrowed signature-only keys 32 1998
2001/0037,450 System and method for process protection 189 2001
 
N.star-solid.Able Technologies, Inc. (1)
6138239 Method and system for authenticating and utilizing secure resources in a computer system 109 1998
 
TREND MICRO INCORPORATED (1)
5680547 Method and apparatus for controlling network and workstation access prior to workstation boot 175 1995
 
INTEGRATED TECHNOLOGOES OF AMERICA, INC. (1)
* 6351813 Access control/crypto system 224 1998
 
KELLY SERVICES, INC. (1)
5007082 Computer software encryption apparatus 177 1990
 
LEVADA, VICTOR (1)
6085296 Sharing memory pages and page tables among computer processes 182 1997
 
BROWN, DOUGLAS G. (1)
5944821 Secure software registration and integrity assessment in a computer system 280 1996
 
ADVANCED SILICON TECHNOLOGIES, LLC (2)
6321314 Method and apparatus for restricting memory access 186 1999
6397379 Recording in a program execution profile references to a memory-mapped active device 198 1999
 
SAMSUNG ELECTRONICS CO., LTD. (1)
5717903 Method and appartus for emulating a peripheral device to allow device driver development before availability of the peripheral device 130 1995
 
MICROSEMI SEMICONDUCTOR (U.S.) INC. (1)
5901225 System and method for performing software patches in embedded systems 141 1996
 
HITACHI, LTD. (7)
4975836 Virtual computer system 125 1985
4802084 Address translator 109 1986
5187802 Virtual machine system with vitual machine resetting store indicating that virtual machine processed interrupt without virtual machine control program intervention 104 1989
5295251 Method of accessing multiple virtual address spaces and computer system 101 1990
5506975 Virtual machine I/O interrupt control method compares number of pending I/O interrupt conditions for non-running virtual machines with predetermined number 130 1993
5628022 Microcomputer with programmable ROM 103 1994
5504922 Virtual machine with hardware display controllers for base and target machines 113 1994
 
ORACLE AMERICA, INC. (4)
5935242 Method and apparatus for initializing a device 140 1996
5987557 Method and apparatus for implementing hardware protection domains in a system with no memory management unit (MMU) 178 1997
6035374 Method of executing coded instructions in a multiprocessor having shared execution resources including active, nap, and sleep states in accordance with cache miss latency 105 1997
6131166 System and method for cross-platform application level power management 169 1999
 
AKAMAI TECHNOLOGIES, INC. (4)
2009/0132,648 CONTENT DELIVERY AND GLOBAL TRAFFIC MANAGEMENT NETWORK SYSTEM 77 2009
2009/0132,648 CONTENT DELIVERY AND GLOBAL TRAFFIC MANAGEMENT NETWORK SYSTEM 77 2009
2009/0132,648 CONTENT DELIVERY AND GLOBAL TRAFFIC MANAGEMENT NETWORK SYSTEM 77 2009
2009/0132,648 CONTENT DELIVERY AND GLOBAL TRAFFIC MANAGEMENT NETWORK SYSTEM 77 2009
 
DEUTSCHE TELEKOM AG (1)
6222923 Method for securing system protected by a key hierarchy 121 1997
 
APPLE INC. (1)
5752046 Power management system for computer device interconnection bus 148 1996
 
MCGOUGH, PAUL (1)
6445797 Method and system for performing secure electronic digital streaming 140 1998
 
HITACHI MICROCOMPUTER ENGINEERING LTD. (1)
4571672 Access control method for multiprocessor systems 145 1983
 
HELBIG, WALTER A., SR. (1)
5953502 Method and apparatus for enhancing computer system security 215 1997
 
KABUSHIKI KAISHA TOSHIBA (1)
5890189 Memory management and protection system for virtual memory in computer system 161 1996
 
VORTEX PATHWAY LLC (1)
6212635 Network security system allowing access and modification to a security subsystem after initial installation when a master token is in place 259 1998
 
DISK TECHNICIAN CORPORATION (1)
5287363 System for locating and anticipating data storage media failures 143 1991
 
NORTHROP GRUMMAN SYSTEMS CORPORATION (1)
* 2003/0115,468 Assignment of user certificates/private keys in token enabled public key infrastructure system 64 2001
 
INTERNATIONAL BUSINESS MACHINES CORPORATION (17)
4366537 Authorization mechanism for transfer of program control or data between different address spaces having different storage protect keys 136 1980
4843541 Logical resource partitioning of a data processing system 330 1987
5230069 Apparatus and method for providing private and shared access to host address and data spaces by guest programs in a virtual machine computer system 133 1990
5237616 Secure computer system having privileged and unprivileged memories 126 1992
5317705 Apparatus and method for TLB purge reduction in a multi-level machine system 161 1993
5555385 Allocation of address spaces within virtual machine compute system 176 1993
5564040 Method and apparatus for providing a server function in a logically partitioned hardware machine 207 1994
5560013 Method of using a target processor to execute programs of a source architecture that uses multiple address spaces 192 1994
5555414 Multiprocessing system including gating of host I/O and external enablement to guest enablement at polling intervals 140 1994
5628023 Virtual storage computer system having methods and apparatus for providing token-controlled access to protected pages of memory via a token-accessible view 66 1994
5764969 Method and system for enhanced management operation utilizing intermixed user level and supervisory level instructions with partial concept synchronization 103 1995
5809546 Method for managing I/O buffers in shared storage by structuring buffer table having entries including storage keys for controlling accesses to the buffers 98 1996
6175924 Method and apparatus for protecting application data in secure storage areas 154 1997
5956408 Apparatus and method for secure distribution of data 182 1998
6615278 Cross-platform program, system, and method having a global registry object for mapping registry equivalent functions in an OS/2 operating system environment 101 1999
2002/0133,701 Method for tracing traitor receivers in a broadcast encryption system 13 2001
* 2002/0129,261 Apparatus and method for encrypting and decrypting data recorded on portable cryptographic tokens 21 2001
 
ADVANCED MICRO DEVICES, INC. (2)
6421702 Interrupt driven isochronous task scheduler system 108 1998
6499123 Method and apparatus for debugging an integrated circuit 160 2000
 
NIKON CORPORATION (1)
6252650 Exposure apparatus, output control method for energy source, laser device using the control method, and method of producing microdevice 107 2000
 
TENNECO AUTOMOTIVE OPERATING COMPANY INC. (1)
6158546 Straight through muffler with conically-ended output passage 121 1999
 
LENOVO PC INTERNATIONAL (2)
6684326 Method and system for authenticated boot operations in a computer system of a networked computing environment 124 1999
2002/0169,717 System and method for installing a remote credit card authorization on a system with a TCPA complaint chipset 88 2001
 
HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. (4)
5319760 Translation buffer for virtual machines with address space match 171 1991
5421006 Method and apparatus for assessing integrity of computer system software 487 1994
5668971 Posted disk read operations performed by signalling a disk read complete to the system prior to completion of data transfer 118 1996
6988250 Trusted computing platform using a trusted device assembly 57 2000
 
LUCENT TECHNOLOGIES INC. (1)
5740178 Software for controlling a reliable backup memory 91 1996
 
CISCO TECHNOLOGY, INC. (1)
6560627 Mutual exclusion at the record level with priority inheritance for embedded systems using one semaphore 95 1999
 
PARKER-HANNIFIN CORPORATION (1)
5473692 Roving software license for a hardware agent 571 1994
 
GLOBALFOUNDRIES INC. (3)
6093213 Flexible implementation of a system management mode (SMM) in a processor 105 1996
6044478 Cache with finely granular locked-down regions 166 1997
2002/0147,916 Method and apparatus for securing portions of memory 112 2001
 
ABSOLUTE SOFTWARE CORPORATION (1)
6269392 Method and apparatus to monitor and locate an electronic device using a secured intelligent agent 208 1997
 
FUJITSU LIMITED (1)
5361375 Virtual computer system having input/output interrupt control of virtual machines 133 1993
 
SUN MICROSYSTEMS, INC. (1)
5255379 Method for automatically transitioning from V86 mode to protected mode in a computer system using an Intel 80386 or 80486 processor 157 1990
 
ACACIA RESEARCH GROUP LLC (1)
5872994 Flash memory incorporating microcomputer having on-board writing function 193 1996
 
ACCENTURE GLOBAL SERVICES LIMITED (1)
6529909 Method for translating an object attribute converter in an information services patterns environment 503 1999
 
ETA TECHNOLOGIES CORPORATION (1)
* 5727061 Personal access management systems 22 1995
 
MICROCHIP TECHNOLOGY INCORPORATED (1)
5469557 Code protection in microcontroller with EEPROM fuses 120 1993
 
DIGITAL EQUIPMENT CORPORATION (1)
4319323 Communications device for data processing system 125 1980
 
NATIONAL SEMICONDUCTOR CORPORATION (1)
5684948 Memory management circuit which provides simulated privilege levels 109 1995
 
ROBERT BOSCH GMBH (1)
4430709 Apparatus for safeguarding data entered into a microprocessor 102 1981
 
EMC CORPORATION (1)
5633929 Cryptographic key escrow system having reduced vulnerability to harvesting attacks 125 1995
 
INTEL CORPORATION (34)
5075842 Disabling tag bit recognition and allowing privileged operations to occur in an object-oriented memory protection mechanism 128 1989
5455909 Microprocessor with operation capture facility 102 1992
5386552 Preservation of a computer system processing state in a mass storage device 219 1994
5568552 Method for providing a roving software license from one node to another node 430 1995
5805712 Apparatus and method for providing secured communications 277 1995
5835594 Methods and apparatus for preventing unauthorized write access to a protected non-volatile storage 165 1996
5729760 System for providing first type access to register if processor in first mode and second type access to register if processor not in first mode 132 1996
5844986 Secure BIOS 308 1996
5937063 Secure boot 302 1996
5852717 Performance optimizations for computer networks utilizing HTTP 346 1996
5757919 Cryptographically protected paging subsystem 243 1996
5978481 Modem compatible method and apparatus for encrypting data that is transparent to software applications 105 1997
6058478 Apparatus and method for a vetted field upgrade 131 1997
6175925 Tamper resistant player for scrambled contents 133 1997
6178509 Tamper resistant methods and apparatus 148 1997
6205550 Tamper resistant methods and apparatus 148 1997
6357004 System and method for ensuring integrity throughout post-processing 125 1997
6249872 Method and apparatus for increasing security against unauthorized write access to a protected memory 116 1998
6192455 Apparatus and method for preventing access to SMRAM space through AGP addressing 125 1998
6173417 Initializing and restarting operating systems 165 1998
6115816 Optimized security functionality in an electronic system 143 1998
2002/0004,900 METHOD FOR SECURE ANONYMOUS COMMUNICATION 87 1998
6463535 System and method for verifying the integrity and authorization of software before execution in a local platform 222 1998
6282650 Secure public digital watermark 191 1999
6389537 Platform and method for assuring integrity of trusted agent communications 238 1999
6633981 Electronic system and method for controlling access through user authentication 134 1999
6535988 System for detecting over-clocking uses a reference signal thereafter preventing over-clocking by reducing clock rate 117 1999
6507904 Executing isolated mode instructions in a secure system running in privilege rings 177 2000
6633963 Controlling access to multiple memory zones in an isolated execution environment 155 2000
6678825 Controlling access to multiple isolated memories in an isolated execution environment 102 2000
2003/0002,668 Multi-level, multi-dimensional content protections 29 2001
2003/0126,453 Processor supporting execution of an authenticated code instruction 93 2001
7028149 System and method for resetting a platform configuration register 49 2002
7165181 System and method for establishing trust without revealing identity 29 2002
 
The United States of America as represented by the Secretary of the Navy (1)
6108644 System and method for electronic transactions 187 1998
 
TEXAS INSTRUMENTS INCORPORATED (1)
4521852 Data processing device formed on a single semiconductor substrate having secure memory 127 1982
 
MITSUBISHI DENKI KABUSHIKI KAISHA (2)
5706469 Data processing system controlling bus access to an arbitrary sized memory area 94 1995
6101584 Computer system and semiconductor device on one chip including a memory and central processing unit for making interlock access to the memory 105 1997
 
STMICROELECTRONICS S.A. (1)
7133990 System and method for controlling access to protected data stored in a storage unit 22 2002
 
Amdahl Corporation (1)
5574936 Access control mechanism controlling access to and logical purging of access register translation lookaside buffer (ALB) in a computer system 113 1995
 
IDENTIX INCORPORATED (1)
2001/0027,527 Secure transaction system 203 2001
 
SILICON STORAGE TECHNOLOGY, INC. (1)
6292874 Memory management method and apparatus for partitioning homogeneous memory and restricting access of installed applications to predetermined memory ranges 174 1999
 
SEIKO EPSON CORPORATION (1)
6088262 Semiconductor device and electronic equipment having a non-volatile memory with a security function 115 1998
 
NCR CORPORATION (1)
4403283 Extended memory system and method 130 1980
 
SCSK CORPORATION (1)
6301646 Pointer verification system and method 105 1999
 
Silicon Systems Design Ltd. (1)
6014745 Protection for customer programs (EPROM) 115 1997
 
HEWLETT PACKARD ENTERPRISE DEVELOPMENT LP (5)
6055637 System and method for accessing enterprise-wide resources by presenting to the resource a temporary credential 445 1996
6061794 System and method for performing secure device communications in a peer-to-peer bus architecture 283 1997
6378072 Cryptographic system 245 1998
6125430 Virtual memory allocation in a virtual address space having an inaccessible gap 154 1998
6275933 Security system for a computerized apparatus 106 1999
 
Codex Technologies, Inc. (2)
6463537 Modified computer motherboard security and identification system 181 1999
2003/0018,892 Computer with a modified north bridge, security engine and smart card having a secure boot capability and method for secure booting a computer 139 2001
 
MICRON TECHNOLOGY, INC. (1)
5970147 System and method for configuring and registering a cryptographic device 190 1997
 
FREESCALE SEMICONDUCTOR, INC. (1)
5737760 Microcontroller with security logic circuit which prevents reading of internal memory by external program 171 1995
 
XEROX CORPORATION (1)
2003/0231,328 Multiple printer driver 60 2002
 
CEVA IRELAND LIMITED (1)
6282651 Security system protecting data with an encryption key 107 1999
 
KINGLITE HOLDINGS INC. (1)
6557104 Method and apparatus for secure processing of cryptographic keys 273 1997
 
SUMITOMO BANK OF NEW YORK TRUST COMPANY (1)
6378068 Suspend/resume capability for a protected mode microprocesser 201 1995
 
UTMC MICROELECTRONIC SYSTEMS INC. (1)
5079737 Memory management unit for the MIL-STD 1750 bus 105 1988
 
VAN DETSAN NETWORKS LIMITED LIABILITY COMPANY (1)
4759064 Blind unanticipated signature systems 257 1985
 
PURE FILL CORPORATION (1)
5582717 Water dispenser with side by side filling-stations 139 1993
 
ROCKWELL COLLINS, INC. (1)
6374286 Real time processor capable of concurrently running multiple independent JAVA machines 346 1998
 
MICROSOFT TECHNOLOGY LICENSING, LLC (7)
4974159 Method of transferring control in a multitasking computer system 60 1988
5815665 System and method for providing trusted brokering services over a distributed network 756 1996
6473800 Declarative permission requests in a computer system 274 1998
6327652 Loading and identifying a digital rights management operating system 457 1999
6330670 Digital rights management operating system 505 1999
6609199 Method and apparatus for authenticating an open system application to a portable IC device 203 1999
6651171 Secure execution of program code 169 1999
 
FUJITSU SIEMENS COMPUTERS GMBH (1)
6339816 Method for improving controllability in data processing system with address translation 108 2000
 
XYLON LLC (1)
* 6741991 Data management system 45 2001
 
PANTAURUS LLC (1)
6272533 Secure computer system and method of providing secure access to a computer system including a stand alone switch operable to inhibit data corruption on a storage device 155 1999
 
BRUCE SCHNEIER (1)
5978475 Event auditing system 232 1997
 
INTELLECTUAL VENTURES II LLC (2)
5615263 Dual purpose security architecture with protected internal operating system 210 1995
6188257 Power-on-reset logic with secure power down capability 102 1999
 
LENOVO (SINGAPORE) PTE LTD. (1)
5022077 Apparatus and method for preventing unauthorized access to BIOS in a personal computer system 202 1989
 
CERTCO, INC., A CORPORATION OF DELAWARE (1)
5825880 Multi-step digital signature method and system 263 1997
 
VMWARE, INC. (1)
6496847 System and method for virtualizing computer systems 376 1998
 
Tokyo Shibaura Denki Kabushiki Kaisha (1)
4621318 Multiprocessor system having mutual exclusion control function 74 1983
 
CP8 TECHNOLOGIES (3)
4795893 Security device prohibiting the function of an electronic data processing unit after a first cutoff of its electrical power 100 1987
5293424 Secure memory card 254 1992
5479509 Method for signature of an information processing file, and apparatus for implementing it 224 1994
 
SILICON GRAPHICS INTERNATIONAL CORP. (1)
6148379 System, method and computer program product for page sharing between fault-isolated cells in a distributed shared memory system 112 1997
 
Sperry Corporation (1)
4419724 Main bus interface package 100 1980
 
ACTIVCARD (1)
* 2003/0005,317 Method and system for generating and verifying a key protection certificate 43 2001
 
Dell USA, L.P. (1)
5657445 Apparatus and method for limiting access to mass storage devices in a computer system 173 1996
 
Real Time, Inc. (1)
6412035 Apparatus and method for decreasing the response times of interrupt service routines 120 1998
 
GREENLIANT LLC (2)
6339815 Microcontroller system having allocation circuitry to selectively allocate and/or hide portions of a program memory address space 162 1998
6505279 Microcontroller system having security circuitry to selectively lock portions of a program memory address space 105 1998
 
INTELLECTUAL VENTURES HOLDING 81 LLC (1)
6199152 Translated memory protection apparatus for an advanced microprocessor 158 1996
 
BIOSCRYPT INC. (1)
* 5790668 Method and apparatus for securely handling data in a database of biometrics and associated data 86 1995
 
BOZAK INVESTMENTS, LLC (1)
5459867 Kernels, description tables, and device drivers 217 1993
 
RPX CORPORATION (2)
5919257 Networked workstation intrusion detection system 372 1997
2004/0133,803 Methods and apparatus for protecting information 9 2003
 
SMART LINK LTD. (1)
6092095 Real-time task manager for a personal computer 161 1996
 
ZERO-KNOWLEDGE SYSTEMS INTERNATIONAL, INC. (2)
5606617 Secret-key certificates 219 1994
5604805 Privacy-protected transfer of electronic information 128 1996
 
INFOSPACE, INC. (1)
4529870 Cryptographic identification, financial transaction, and credential device 444 1982
 
Entrust Technologies Limited (2)
* 6393565 Data management system and method for a limited capacity cryptographic storage unit 35 1998
6363485 Multi-factor biometric authenticating device and method 203 1998
 
OPEN INVENTION NETWORK, LLC (1)
5935247 Computer system having a genetic code that cannot be directly accessed and a method of maintaining the same 94 1997
 
SAFENET, INC. (1)
6282657 Kernel mode protection 141 1998
 
MATSUSHITA ELECTRIC INDUSTRIAL CO., LTD. (1)
5796845 Sound field and sound image control apparatus and method 111 1997
 
MCAFEE, INC. (1)
5459869 Method for providing protected mode services for device drivers and other resident software 132 1994
* Cited By Examiner

Patent Citation Ranking

Forward Cite Landscape

Patent Info (Count) # Cites Year
 
Other [Check patent profile for assignment information] (1)
* 8620818 Activation system architecture 2 2007
 
HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. (3)
* 2006/0090,078 Initiation of an application 3 2004
* 8090939 Digital certificate that indicates a parameter of an associated cryptographic token 4 2005
* 2007/0094,493 Digital certificate that indicates a parameter of an associated cryptographic token 16 2005
 
INTEL CORPORATION (4)
* 7480806 Multi-token seal and unseal 9 2002
* 2003/0163,711 Multi-token seal and unseal 34 2002
* 7809957 Trusted platform module for generating sealed data 8 2005
* 2007/0073,416 Trusted platform module for generating sealed data 14 2005
 
JPMORGAN CHASE BANK, NATIONAL ASSOCIATION (3)
* 8190893 Portable security transaction protocol 13 2004
* 2005/0091,492 Portable security transaction protocol 54 2004
8583928 Portable security transaction protocol 1 2012
 
CASSIDIAN SAS (1)
* 2011/0030,033 MANAGING SECURE USE OF A TERMINAL 0 2009
 
MICROSOFT TECHNOLOGY LICENSING, LLC (3)
* 7891008 Profile protection 9 2005
* 2005/0278,535 Profile protection 12 2005
* 2008/0319,779 Activation system architecture 14 2007
 
NOKIA TECHNOLOGIES OY (2)
* 7913086 Method for remote message attestation in a communication system 3 2007
* 2008/0320,308 Method for remote message attestation in a communication system 19 2007
 
SERVICENOW, INC. (2)
* 2006/0133,615 Method and system for using a portable computing device as a smart key device 6 2004
8112628 Using a portable computing device as a smart key device 0 2009
 
SYMANTEC CORPORATION (5)
* 8087074 One time password 8 2005
* 2009/0313,687 One time password 24 2005
9258124 Time and event based one time password 0 2006
* 8434138 One time password 3 2011
* 2012/0096,535 One Time Password 6 2011
 
ZHIGU HOLDINGS LIMITED (2)
* 8761400 Hardware linked product key 0 2005
* 2007/0014,414 Hardware linked product key 6 2005
 
III HOLDINGS 1, LLC (10)
* 7571472 Methods and apparatus for credential validation 7 2002
* 2004/0128,502 Methods and apparatus for credential validation 15 2002
* 7454622 Method and system for modular authentication and session management 20 2002
* 2004/0128,547 Method and system for modular authentication and session management 13 2002
* 8291228 Method and system for modular authentication and session management 4 2008
* 2009/0044,020 Method and System for Modular Authentication and Session Management 9 2008
8474025 Methods and apparatus for credential validation 2 2009
* 2009/0265,555 METHODS AND APPARATUS FOR CREDENTIAL VALIDATION 10 2009
* 8819416 Method and system for modular authentication and session management 0 2012
* 2013/0031,359 METHOD AND SYSTEM FOR MODULAR AUTHENTICATION AND SESSION MANAGEMENT 2 2012
* Cited By Examiner

Maintenance Fees

Fee Large entity fee small entity fee micro entity fee due date
11.5 Year Payment $7400.00 $3700.00 $1850.00 Jul 8, 2019
Fee Large entity fee small entity fee micro entity fee
Surcharge - 11.5 year - Late payment within 6 months $160.00 $80.00 $40.00
Surcharge after expiration - Late payment is unavoidable $700.00 $350.00 $175.00
Surcharge after expiration - Late payment is unintentional $1,640.00 $820.00 $410.00